Snort mailing list archives
Re: Snort alerts to SNMP
From: "Rafeeq Rehman" <rr () argusnetsec com>
Date: Wed, 21 May 2003 21:00:52 -0400
I don't have experience with Nagios but it works very well with HP OpenView (I tested with Network Node Manager). Yes, you can do some trend analysis based upon traps/alerts. However, I don't recommend to merge Snort data with any production network monitoring system. False alarms do occur which may panic operators in production environment. Rafeeq Rehman ----- Original Message ----- From: <Paul.Fiero () ci austin tx us> To: <snort-users () lists sourceforge net> Sent: Wednesday, May 21, 2003 3:57 PM Subject: [Snort-users] Snort alerts to SNMP
Greetings all, I am currently facing a situation that I hope you all can help with. I am trying to see if I can get my snort sensors to send SNMP alerts to my Nagios box. That way it can send alerts and notifications while providing
a
method for maintaining trends in alerts and a nifty visual tool for seeing things. Does this make any sense? Is anyone doing something along these lines? If you have any help, suggestions, recommendations, etc. Please e-mail me at paul.fiero () ci austin tx us Paul Fiero Information Security Analyst City of Austin (512) 974-3559 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.483 / Virus Database: 279 - Release Date: 5/19/2003 ------------------------------------------------------- This SF.net email is sponsored by: ObjectStore. If flattening out C++ or Java code to make your application fit in a relational database is painful, don't do it! Check out ObjectStore. Now part of Progress Software. http://www.objectstore.net/sourceforge _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
------------------------------------------------------- This SF.net email is sponsored by: ObjectStore. If flattening out C++ or Java code to make your application fit in a relational database is painful, don't do it! Check out ObjectStore. Now part of Progress Software. http://www.objectstore.net/sourceforge _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Snort alerts to SNMP Paul . Fiero (May 21)
- Re: Snort alerts to SNMP Rafeeq Rehman (May 21)
- Re: Snort alerts to SNMP Roy S. Rapoport (May 21)
- Re: Snort alerts to SNMP Rafeeq Rehman (May 21)
- Re: Snort alerts to SNMP Roy S. Rapoport (May 21)
- Re: Snort alerts to SNMP Rafeeq Rehman (May 21)